$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3132302e38392e39342e302f32332d3234203d3e203536323333.roa File: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY= Subject key identifier: 3E:E1:DF:CB:04:D6:CD:23:42:22:B9:07:6A:B1:DF:E5:14:C2:98:25 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 6BBD0E8FC7ADE186C13BDB2E3655BE2025105249 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3132302e38392e39342e302f32332d3234203d3e203536323333.roa Signing time: Mon 09 Jun 2025 13:02:20 +0000 ROA not before: Mon 09 Jun 2025 12:57:20 +0000 ROA not after: Mon 08 Jun 2026 13:02:20 +0000 asID: 56233 IP address blocks: 120.89.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 10:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:bd:0e:8f:c7:ad:e1:86:c1:3b:db:2e:36:55:be:20:25:10:52:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jun 9 12:57:20 2025 GMT Not After : Jun 8 13:02:20 2026 GMT Subject: CN=3EE1DFCB04D6CD234222B9076AB1DFE514C29825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ce:bb:95:28:e4:8e:4f:74:f3:48:60:e4:00: 22:6a:1a:1c:2c:62:f7:b5:6e:bf:fb:ff:f6:af:81: 63:63:27:fb:ef:90:9a:8a:76:a3:dc:24:fb:e0:8e: b8:1c:e3:04:5a:1a:aa:93:ec:ba:82:fc:26:b7:43: 22:2f:18:31:70:9f:b9:d0:95:a1:92:9f:9f:1d:9e: 9b:33:04:26:e9:01:86:ea:a3:61:e4:3b:f8:b6:e5: 76:86:16:07:80:91:ce:03:0e:bd:67:ee:2e:35:7d: 5d:8a:2c:64:32:a5:01:2b:6a:ce:09:e0:cc:de:25: 6d:a8:d4:7c:b8:65:e9:57:cc:db:af:dc:38:f2:2e: 5f:5c:2f:9c:e4:7f:d7:b8:06:97:6a:bc:1a:be:c0: 2e:7b:28:70:d8:a3:1d:86:69:6d:89:87:eb:80:b0: ca:68:c9:71:ee:b7:4a:2c:e8:dc:8d:c9:03:b8:b1: c5:91:a3:c5:8b:c1:c7:6a:5b:86:08:9d:c7:df:76: de:5a:c0:d4:08:78:0e:61:19:3b:ee:f2:54:6c:de: 81:f7:e8:52:5a:59:da:ef:46:e1:88:68:74:2b:d7: 59:8a:02:33:c5:c5:b8:e2:4d:a6:06:09:2e:49:2a: c9:f8:af:72:0b:48:99:50:9d:c7:3e:5c:0d:db:0f: 9d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E1:DF:CB:04:D6:CD:23:42:22:B9:07:6A:B1:DF:E5:14:C2:98:25 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3132302e38392e39342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.89.94.0/23 Signature Algorithm: sha256WithRSAEncryption cc:23:08:06:46:f8:bb:59:35:ec:88:1c:81:44:81:55:df:ad: 1c:07:96:b3:b8:68:f6:f3:29:41:a3:dd:4b:8e:32:5b:04:17: 20:80:f8:63:e4:35:44:8a:b8:99:de:a5:4a:8a:d6:00:74:11: c0:aa:82:1c:a4:ea:bf:07:73:3c:6e:82:3c:ad:23:00:da:12: 37:fb:1a:50:8c:bd:da:a4:d3:9d:44:30:3d:18:5c:c9:c4:ab: 63:fc:15:60:29:f6:ed:ce:a0:3e:52:5b:f4:f7:70:e1:ad:bb: 1d:4d:9d:46:e1:61:aa:8f:a2:7e:a6:43:9c:75:f6:84:9d:b1: 11:a1:33:98:52:1b:c4:3c:2f:c2:c4:12:e6:4a:1b:ef:28:b8: b7:b6:69:7d:57:33:5a:ff:f3:2a:00:73:0d:bf:a9:3f:3c:ad: 0f:a1:fc:31:a8:75:40:48:ec:59:c0:31:72:50:eb:15:cc:74: bd:b7:05:ce:c5:63:2f:3a:55:0f:c1:59:9c:4e:d0:2d:90:cb: 96:b1:81:63:0b:f7:7b:1f:3f:e2:d6:01:70:6d:31:2d:84:dd: 52:53:11:ec:ee:4b:80:5b:8b:8f:70:3f:be:f9:b3:f6:6e:e6: c7:67:29:9d:dd:14:a7:97:8a:de:16:30:29:72:ae:68:c1:e8: 75:3e:c9:b8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUa70Oj8et4YbBO9suNlW+ICUQUkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTA2MDkxMjU3MjBaFw0yNjA2MDgxMzAyMjBaMDMxMTAvBgNV BAMTKDNFRTFERkNCMDRENkNEMjM0MjIyQjkwNzZBQjFERkU1MTRDMjk4MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwzruVKOSOT3TzSGDkACJqGhws Yve1br/7//avgWNjJ/vvkJqKdqPcJPvgjrgc4wRaGqqT7LqC/Ca3QyIvGDFwn7nQ laGSn58dnpszBCbpAYbqo2HkO/i25XaGFgeAkc4DDr1n7i41fV2KLGQypQEras4J 4MzeJW2o1Hy4ZelXzNuv3DjyLl9cL5zkf9e4BpdqvBq+wC57KHDYox2GaW2Jh+uA sMpoyXHut0os6NyNyQO4scWRo8WLwcdqW4YIncffdt5awNQIeA5hGTvu8lRs3oH3 6FJaWdrvRuGIaHQr11mKAjPFxbjiTaYGCS5JKsn4r3ILSJlQncc+XA3bD53BAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPuHfywTWzSNCIrkHarHf5RTCmCUwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzMxMzIzMDJlMzgzOTJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzYzMjMzMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF4WV4wDQYJKoZIhvcN AQELBQADggEBAMwjCAZG+LtZNeyIHIFEgVXfrRwHlrO4aPbzKUGj3UuOMlsEFyCA +GPkNUSKuJnepUqK1gB0EcCqghyk6r8HczxugjytIwDaEjf7GlCMvdqk051EMD0Y XMnEq2P8FWAp9u3OoD5SW/T3cOGtux1NnUbhYaqPon6mQ5x19oSdsRGhM5hSG8Q8 L8LEEuZKG+8ouLe2aX1XM1r/8yoAcw2/qT88rQ+h/DGodUBI7FnAMXJQ6xXMdL23 Bc7FYy86VQ/BWZxO0C2Qy5axgWML93sfP+LWAXBtMS2E3VJTEezuS4Bbi49wP775 s/Zu5sdnKZ3dFKeXit4WMClyrmjB6HU+ybg= -----END CERTIFICATE-----Generated at Tue Nov 4 23:17:06 2025 by rpki-client